Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
File: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft (raw, json)
Hash identifier: 7piYvm+HyAsWvK1vX/hQ3dcVA+z7nxbYSDPK3s4LVgo=
Subject key identifier: 69:5C:57:02:C6:A9:5F:A5:BD:D0:F2:B9:B3:7D:F8:06:76:A2:8E:A3
Authority key identifier: 8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
Certificate issuer: /CN=8e79cef458de50392e3c02b69182f34c60148d24
Certificate serial: 019D389C45AC420B37AFDB33672953F0659F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
Manifest number: 025F
Signing time: Sun 29 Mar 2026 08:00:58 +0000
Manifest this update: Sun 29 Mar 2026 08:00:58 +0000
Manifest next update: Mon 30 Mar 2026 08:00:58 +0000
Files and hashes: 1: _c6xx4G9gRqlWT599mmQOoWoW50.roa (hash: c/9VJ4HKTN9Q4dyySRrDW6GfcNhn9tZLqvs7ju71Tx8=)
2: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl (hash: AAM4edCUvAMWGCLNU2puVfOfTW6IXW2KstQefJeSGwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:45:ac:42:0b:37:af:db:33:67:29:53:f0:65:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e79cef458de50392e3c02b69182f34c60148d24
Validity
Not Before: Mar 29 08:00:58 2026 GMT
Not After : Mar 30 08:00:58 2026 GMT
Subject: CN=695c5702c6a95fa5bdd0f2b9b37df80676a28ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:da:0d:ef:8e:9e:ef:24:b2:e7:b3:ed:f8:32:
81:89:f9:88:71:b7:71:70:df:03:95:a2:81:c2:4f:
95:02:dc:4e:90:95:13:30:b6:b6:c4:a9:ce:f0:1e:
61:0f:49:78:e2:5b:26:67:9c:fb:ae:ba:07:51:ae:
98:ab:60:f7:7f:bd:f2:47:c8:df:85:80:78:7f:91:
75:fc:1a:0e:b4:ee:e2:c4:59:8d:fb:de:3c:42:da:
02:1b:0c:0a:67:35:6e:79:00:04:cd:1d:c8:be:b3:
f1:d4:af:62:d9:2e:bb:40:f7:7e:ae:f9:dc:eb:d7:
41:7c:c5:3e:34:9c:92:eb:fa:d3:b4:a9:76:c1:21:
63:53:06:8c:b6:c5:f6:71:75:0c:d5:d0:56:5c:5a:
7a:6c:12:b3:cb:95:a9:82:f0:4d:55:a1:77:60:00:
ae:82:c8:ad:69:0f:b4:b7:34:4a:85:0a:00:45:41:
1e:ad:64:83:23:c7:62:69:0c:63:e7:5f:f7:26:e7:
17:58:72:1c:91:32:b9:b7:2a:44:ac:d2:96:3c:9e:
1d:b2:ac:38:aa:13:b5:3f:4c:a7:46:1c:b6:34:bc:
79:2f:5c:75:7b:fe:66:35:85:51:e1:9f:97:87:51:
59:5d:8e:53:27:8a:08:42:ee:20:90:c1:cb:87:01:
80:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5C:57:02:C6:A9:5F:A5:BD:D0:F2:B9:B3:7D:F8:06:76:A2:8E:A3
X509v3 Authority Key Identifier:
keyid:8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:49:11:61:80:7b:dd:9f:0c:a5:73:68:f8:a7:52:b5:97:b9:
02:bb:a1:a1:f6:36:28:9d:73:cc:9a:41:9c:87:58:c6:65:3e:
f3:f8:17:c3:8b:f2:22:6c:6e:05:25:85:ae:d9:d0:7c:4d:00:
47:63:75:fa:e8:88:c9:b8:15:75:79:a6:9a:51:bd:11:2e:57:
23:50:c5:61:90:23:82:1a:37:f9:86:49:1f:b9:1f:06:74:63:
e1:3b:85:c7:27:83:ca:80:50:a1:42:38:a3:45:26:1a:b2:9d:
e1:20:6f:51:90:ae:b6:2a:52:ec:79:2f:2c:21:10:20:b8:2a:
bf:af:9d:7c:8c:a0:0e:64:44:31:2d:0d:eb:d4:b1:c8:00:29:
6d:45:49:0d:ce:69:de:61:41:8e:ef:78:68:fe:0e:0b:1a:76:
87:e0:c1:41:2c:f2:40:e5:ba:1c:de:6a:f7:c8:f0:8c:0d:6e:
e8:22:83:37:3c:d7:ce:01:8d:bb:8f:a2:ea:e1:f9:cc:a3:90:
76:46:c2:e5:ac:ab:af:4c:c4:4a:41:d0:f2:98:0f:bd:b8:d5:
34:e3:2d:37:12:f5:2e:da:02:ad:01:00:1e:db:d0:a4:92:48:
bc:9e:b3:03:4e:60:7d:f8:8b:2e:0e:50:15:f7:69:29:6d:7a:
e8:d3:53:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:01 2026 by rpki-client